Just that there is ability to read and change the code, even if not everyone reads it, makes developers away from idea to put something malicious there.
20 years of experience and still behaves like a little kid, My 2 year old nephew is more mature. So sad, and ironic that you say that in a foss platform.
Hey I know it sucks when someone isn’t nice to you, but that person is about as right as can be.
Just a month ago thousands of malicious commits discovered on git made the news. Unaudited repositories are a huge vector for attack and have been for years.
If that person seems pissed off you could chalk it up to hearing about this stuff on newsgroup discussion two decades ago.
Wikipedia accepts all new entries by default.
Almost all open source projects review any contribiution first before merge.
It’s also not fair comparison, because there can’t exists an encyclopedia you can learn from but not look what’s inside it.
But you can obfuscate machine code, making it very hard to see what it does, so it’s more temping for code developers to put malicious features when noone can see it.
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]
Rules:
Be civil and nice.
Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.
Just that there is ability to read and change the code, even if not everyone reads it, makes developers away from idea to put something malicious there.
This is wrong and ignorant. It happens all the fucking time. Software vendor supply chain is a huge fucking issue.
Christ, tell me you have no idea what your talking about with 1 sentence vibes.
how about you chill? it will happens less frequently than with proprietary software…
Lol no it doesn’t. It happens weekly, all the fucking time.
Source: I’ve been developing oss software for 20 years and have had to push hundreds of teams to fix their vendors bin.
Chill == I ain’t got shit to say 🤣
Get that reddit attitude out of here.
ah, found the redditor.
best of luck im not doing that shit again,you act like a child.
Lololol oSs is free and SeKuR3 cause rainbows and kittens.
20 years of experience and still behaves like a little kid, My 2 year old nephew is more mature. So sad, and ironic that you say that in a foss platform.
👌👍
With a name like @redditcunts, this one is probably a troll. Just block them.
Just an fyi you can block the trolls here.
Hey I know it sucks when someone isn’t nice to you, but that person is about as right as can be.
Just a month ago thousands of malicious commits discovered on git made the news. Unaudited repositories are a huge vector for attack and have been for years.
If that person seems pissed off you could chalk it up to hearing about this stuff on newsgroup discussion two decades ago.
Software vendor supply chain affects ALL software. It is caught much sooner with open source.
Just like how no one has ever put anything malicious on Wikipedia. Nope, never, not once
Wikipedia accepts all new entries by default. Almost all open source projects review any contribiution first before merge.
It’s also not fair comparison, because there can’t exists an encyclopedia you can learn from but not look what’s inside it. But you can obfuscate machine code, making it very hard to see what it does, so it’s more temping for code developers to put malicious features when noone can see it.
And to back by words: https://gnu.org/proprietary/proprietary-back-doors.html
You won’t find such dense lists for anything that has source code available.